Increasing Searches for ZIP Files, (Thu, Aug 28th) SANS Internet Storm Center, InfoCON: green
August 28, 2025

I noticed recently that we have more and more requests for ZIP files in our web honeypot logs. Over the last year, we have had a substantial increase in these …


Salt Typhoon Exploits Cisco, Ivanti, Palo Alto Flaws to Breach 600 Organizations Worldwide The Hacker [email protected] (The Hacker News)
August 28, 2025

The China-linked advanced persistent threat (APT) actor known as Salt Typhoon has continued its attacks targeting networks across the world, including organizations in the telecommunications, government, transportation, lodging, and military …


CISA Releases Nine Industrial Control Systems Advisories AlertsCISA
August 28, 2025

CISA released nine Industrial Control Systems (ICS) advisories on August 28, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-240-01 Mitsubishi Electric MELSEC iQ-F …


Webinar: Why Top Teams Are Prioritizing Code-to-Cloud Mapping in Our 2025 AppSec The Hacker [email protected] (The Hacker News)
August 28, 2025

Picture this: Your team rolls out some new code, thinking everything's fine. But hidden in there is a tiny flaw that explodes into a huge problem once it hits the …


Hidden Vulnerabilities of Project Management Tools & How FluentPro Backup Secures Them The Hacker [email protected] (The Hacker News)
August 28, 2025

Every day, businesses, teams, and project managers trust platforms like Trello, Asana, etc., to collaborate and manage tasks. But what happens when that trust is broken? According to a recent …


Malicious Nx Packages in ‘s1ngularity’ Attack Leaked 2,349 GitHub, Cloud, and AI Credentials The Hacker [email protected] (The Hacker News)
August 28, 2025

The maintainers of the nx build system have alerted users to a supply chain attack that allowed attackers to publish malicious versions of the popular npm package and other auxiliary …


U.S. Treasury Sanctions DPRK IT-Worker Scheme, Exposing $600K Crypto Transfers and $1M+ Profits The Hacker [email protected] (The Hacker News)
August 28, 2025

The U.S. Department of the Treasury's Office of Foreign Assets Control (OFAC) announced a fresh round of sanctions against two individuals and two entities for their role in the North …


ISC Stormcast For Thursday, August 28th, 2025 https://isc.sans.edu/podcastdetail/9590, (Thu, Aug 28th) SANS Internet Storm Center, InfoCON: green
August 27, 2025

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.  ​Read More


CrowdStrike to Acquire Onum, Boost Falcon Next-Gen SIEM darkreadingFahmida Y. Rashid
August 27, 2025

This acquisition will bring Onum's real-time data pipeline to CrowdStrike's Falcon Next-Gen SIEM platform to deliver autonomous threat detection capabilities. This acquisition will bring Onum's real-time data pipeline to CrowdStrike's Falcon …


Anthropic AI Used to Automate Data Extortion Campaign darkreadingRob Wright
August 27, 2025

The company said the threat actor abused its Claude Code service to "an unprecedented degree," automating reconnaissance, intrusions, and credential harvesting. The company said the threat actor abused its Claude Code …